CARD_ISSUED - FYATU API Docs

{
  "event":      "CARD_ISSUED",
  "eventId":    "evt_01HXY123456ABCDEF",
  "businessId": "BUS1A2B3C4D5E6F",
  "timestamp":  "2026-05-26T10:00:00Z",
  "data": {
    "cardId":         "crd_01HXYZ5555ABCDEF1111",
    "status":         "ACTIVE",
    "cardType":       "VIRTUAL",
    "cardBrand":      "VISA",
    "cardholderId":   "chl_01HXYZ1234ABCDEF5678",
    "maskedPan":      "445123******4123",
    "last4":          "4123",
    "expirationDate": "06/2030",
    "balance":        100.00,
    "currency":       "USD",
    "is3ds":          true,
    "isTokenized":    false,
    "isJitfEnabled":  false,
    "isOneTimeUse":   false
  }
}

{}

WEBHOOK

CARD_ISSUED

{
  "event":      "CARD_ISSUED",
  "eventId":    "evt_01HXY123456ABCDEF",
  "businessId": "BUS1A2B3C4D5E6F",
  "timestamp":  "2026-05-26T10:00:00Z",
  "data": {
    "cardId":         "crd_01HXYZ5555ABCDEF1111",
    "status":         "ACTIVE",
    "cardType":       "VIRTUAL",
    "cardBrand":      "VISA",
    "cardholderId":   "chl_01HXYZ1234ABCDEF5678",
    "maskedPan":      "445123******4123",
    "last4":          "4123",
    "expirationDate": "06/2030",
    "balance":        100.00,
    "currency":       "USD",
    "is3ds":          true,
    "isTokenized":    false,
    "isJitfEnabled":  false,
    "isOneTimeUse":   false
  }
}

{}

Fires after a successful POST /cards request once the card provider confirms the card is active and ready to use.

Event Type

CARD_ISSUED

Payload

{
  "event":      "CARD_ISSUED",
  "eventId":    "evt_01HXY123456ABCDEF",
  "businessId": "BUS1A2B3C4D5E6F",
  "timestamp":  "2026-05-26T10:00:00Z",
  "data": {
    "cardId":         "crd_01HXYZ5555ABCDEF1111",
    "status":         "ACTIVE",
    "cardType":       "VIRTUAL",
    "cardBrand":      "VISA",
    "cardholderId":   "chl_01HXYZ1234ABCDEF5678",
    "maskedPan":      "445123******4123",
    "last4":          "4123",
    "expirationDate": "06/2030",
    "balance":        100.00,
    "currency":       "USD",
    "is3ds":          true,
    "isTokenized":    false,
    "isJitfEnabled":  false,
    "isOneTimeUse":   false
  }
}

Payload Fields

Field	Type	Description
`cardId`	string	The newly issued card ID (prefix `crd_`)
`status`	string	Always `ACTIVE` at issuance
`cardType`	string	`VIRTUAL` or `PHYSICAL`
`cardBrand`	string	`VISA` or `MASTERCARD`
`cardholderId`	string	The cardholder the card belongs to
`isOneTimeUse`	boolean	`true` for single-use cards that auto-terminate after their first settled transaction
`maskedPan`	string	BIN-masked PAN — first 6 digits + 6 stars + last 4 (e.g. `445123******4123`)
`last4`	string	Last 4 digits of the PAN
`expirationDate`	string	Card expiry in `MM/YYYY` format (e.g. `06/2030`)
`balance`	number	Card balance in USD at issuance
`currency`	string	Card currency (always `USD`)
`is3ds`	boolean	3D Secure enabled on this card
`isTokenized`	boolean	Card has been tokenised (Apple Pay / Google Pay)
`isJitfEnabled`	boolean	Just-In-Time funding active

cvv, programId, and environment are intentionally excluded from webhook payloads. The CVV is only available once in the POST /cards issuance response.

Common Use Cases

Display the new card details to the cardholder in your UI
Record the card in your internal database linked to the cardholder
Trigger a “Your card is ready” push notification to the cardholder

{
  "event":      "CARD_ISSUED",
  "eventId":    "evt_01HXY123456ABCDEF",
  "businessId": "BUS1A2B3C4D5E6F",
  "timestamp":  "2026-05-26T10:00:00Z",
  "data": {
    "cardId":         "crd_01HXYZ5555ABCDEF1111",
    "status":         "ACTIVE",
    "cardType":       "VIRTUAL",
    "cardBrand":      "VISA",
    "cardholderId":   "chl_01HXYZ1234ABCDEF5678",
    "maskedPan":      "445123******4123",
    "last4":          "4123",
    "expirationDate": "06/2030",
    "balance":        100.00,
    "currency":       "USD",
    "is3ds":          true,
    "isTokenized":    false,
    "isJitfEnabled":  false,
    "isOneTimeUse":   false
  }
}

{}

Authorizations

Authorization

string

header

required

API key from the FYATU CaaS portal. Pass as Authorization: Bearer <key>.

Body

application/json

event

string

Example:

"CARD_ISSUED"

eventId

string

businessId

string

environment

enum<string>

Available options:

LIVE,

SANDBOX

timestamp

string<date-time>

data

object

Show child attributes

Response

200

Acknowledge the event.

CARD_AUTHORIZATION_VERIFY CARD_FROZEN

​Event Type

​Payload

​Payload Fields

​Common Use Cases

Authorizations

Body

Response

Event Type

Payload

Payload Fields

Common Use Cases